CN104299133A - On-line mobile payment system based on somatosensory network and credibility authentication method - Google Patents

On-line mobile payment system based on somatosensory network and credibility authentication method Download PDF

Info

Publication number
CN104299133A
CN104299133A CN201410565015.2A CN201410565015A CN104299133A CN 104299133 A CN104299133 A CN 104299133A CN 201410565015 A CN201410565015 A CN 201410565015A CN 104299133 A CN104299133 A CN 104299133A
Authority
CN
China
Prior art keywords
node
user
certification center
physiological signal
key
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201410565015.2A
Other languages
Chinese (zh)
Other versions
CN104299133B (en
Inventor
赵华伟
徐如志
田茂圣
彭云
姜林枫
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
SHANDONG SUNDATA MANAGEMENT SOFTWARE ENGINEERING Co Ltd
Qilu University of Technology
Original Assignee
SHANDONG SUNDATA MANAGEMENT SOFTWARE ENGINEERING Co Ltd
Qilu University of Technology
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by SHANDONG SUNDATA MANAGEMENT SOFTWARE ENGINEERING Co Ltd, Qilu University of Technology filed Critical SHANDONG SUNDATA MANAGEMENT SOFTWARE ENGINEERING Co Ltd
Priority to CN201410565015.2A priority Critical patent/CN104299133B/en
Publication of CN104299133A publication Critical patent/CN104299133A/en
Application granted granted Critical
Publication of CN104299133B publication Critical patent/CN104299133B/en
Expired - Fee Related legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/30Payment architectures, schemes or protocols characterised by the use of specific devices or networks
    • G06Q20/32Payment architectures, schemes or protocols characterised by the use of specific devices or networks using wireless devices
    • G06Q20/322Aspects of commerce using mobile devices [M-devices]
    • G06Q20/3227Aspects of commerce using mobile devices [M-devices] using secure elements embedded in M-devices
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/382Payment protocols; Details thereof insuring higher security of transaction
    • G06Q20/3829Payment protocols; Details thereof insuring higher security of transaction involving key management
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions
    • G06Q20/40145Biometric identity checks

Abstract

The invention provides an on-line mobile payment system based on a somatosensory network. The on-line mobile payment system based on the somatosensory network comprises a medical center, an e-business authentication center, an intelligent terminal, an aggregation node, a wearing node and an implantation node, wherein the e-business authentication center authenticates the on-line mobile payment of a user. The invention further discloses a credibility authentication method. A registration phase comprises the steps of (a) registering the medical center, (b) registering the e-business authentication center, (c) generating secret key information, (d) coding and dividing equally and (e) establishing a polynomial. An authentication phase comprises the steps of (1) starting a transaction, (2) conforming the transaction, (3) measuring physiological signals, (4) generating a set, (5) generating and sending messages, (6) authenticating a user identity, (7) reconstructing the polynomial, (8) establishing Ktf and carrying out judgment, and (9) verifying legitimacy. According to the on-line mobile payment system and method, a unique secret key can be obtained through the same physiological signal of the user in a negotiation mode, authentication of on-line mobile payment is achieved effectively, and the safety of payment is guaranteed.

Description

Based on online mobile-payment system and the authentic authentication method of body sense net
Technical field
The present invention relates to a kind of online mobile-payment system based on body sense net and authentic authentication method, in particular, the physiological parameter particularly relating to a kind of user of utilization negotiates the online mobile-payment system based on body sense net and the authentic authentication method of key.
Background technology
Along with smart mobile phone, the Intelligent mobile equipments such as panel computer universal, Mobile Online to pay with it fast, easily feature be widely used in e-commerce field, and occupy the dominant position of e-commerce transaction gradually.But, due to Intelligent mobile equipment feature inherently, this on-line payment mode is caused to there is huge security risk: the commercial Intelligent mobile equipment of (1) current overwhelming majority is in view of ease of use issues, there is no built-in untrusted location (as stored the safety device of digital certificate), which results in and be arranged on a lot of APP in Intelligent mobile equipment and insincere, there is the behavior that malice steals user profile.The APP of malice even can the input behavior of monitoring users, thus obtains account and the password of user, causes great threat to the fund security of user.(2) Intelligent mobile equipment has portability feature, and this makes user be difficult to the method accepting to be strengthened Intelligent mobile equipment security by external safety equipment (password input apparatus as external).(3) there is safety precaution phenomenon not in place in some legal on-line payment APP, causes the on-line payment of user to there is huge potential safety hazard.Such as, a lot of on-line payment APP passes through cipher protocol, but guarantee payment safety by short message verification code, but wooden horse APP can monitor the payment verification code of bank, and be sent on phone number that opponent specifies, thus make opponent walk around the Verification System of paying centre, complete and the robber of user credit card is brushed.。
Summary of the invention
The present invention, in order to overcome the shortcoming of above-mentioned technical matters, provides a kind of online mobile-payment system based on body sense net and authentic authentication method.
Online mobile-payment system based on body sense net of the present invention, comprise medical centre, e-business certification center, intelligent terminal and be arranged at aggregation node, wearing node and the implantation node on user's body, dress node and implant in the node body surface that is arranged at user respectively and body, for gathering the physiological signal of user; Aggregation node, wearing node and implantation node form body area network; It is characterized in that: dress in node and implantation node and have at least two nodes to gather same physiological signal; Aggregation node is by wireless network and medical centre telecommunication and realize registering, and by dressing node and implanting the physiological signal that node gathers user, is communicated with intelligent terminal by bluetooth module; Intelligent terminal by wireless network and e-business certification center to center communications, to realize online mobile payment; E-business certification center carries out certification according to " two sensing nodes have great similarity to two groups of data that the same physiological signal collection of user obtains " simultaneously to the online mobile payment of user.
Online mobile-payment system based on body sense net of the present invention, is provided with in described aggregation node and realizes and wearing node and the IEEE802.15.6 module implanting node communication, the SIM card communication module communicated with medical centre and the bluetooth module with intelligent terminal communication; The wireless network of the wireless network that described aggregation node communicates with medical centre and intelligent terminal and e-business certification center to center communications is 4G, 3G or GPRS cordless communication network.
Online mobile-payment system based on body sense net of the present invention, described aggregation node is provided with display screen, acknowledgement key and cancel key.
The authentic authentication method of the online mobile-payment system based on body sense net of the present invention, its special feature is: comprise registration phase and authentication phase;
Described registration phase is realized by following steps:
A). medical centre is registered, when user applies for body area network, medical centre First the built-in key of sensing node gathering identical signal in body area network for two of certification is given With the ID card No. of user If two sensing nodes are respectively node , node ,Medical centre record comprises identification card number , user name , node Mark , node Mark And key In interior user profile; B). e-business certification center is registered, and user is to e-business certification center During registration, complete registration by following steps: b-1). send request, e-business certification center According to the identification card number that user provides , to medical centre Send the request of extracting corresponding key information; B-2). produce key and send, medical centre Receive e-business certification center Request after, first produce a random number , then calculated by Hash function: , wherein Represent the link of message, produce key information And send it to e-business certification center ;E-business certification center Acquisition comprises identification card number , user name , node Mark , node Mark And key In interior user profile; C). verify and produce key information, medical centre Will Send to the aggregation node in body area network, aggregation node is broadcasted within the scope of body area network; Work as sensor node And sensor node Receive After, utilize preset key Checking Legitimacy, if legal, produce ; D). Coding is decile also, sensor node With First self is calculated Be encoded to binary form, and will Binary form be divided into + 1 section, if binary-coded Duan Wei , , Binary form be , then ; E). build multinomial, sensor node With Construct one respectively Rank multinomial , = + + ... + ,Wherein Represent Decimal form; The registration phase of user completes;
Described authentication phase has been come by following steps:
1). connect and initiate transaction, user utilizes on intelligent terminal When buying commodity, selected commodity after clicking " payment " button, Open the aggregation node that bluetooth module finds body area network, after both sides connect, By dealing money Send to aggregation node; 2). trade confirmation, aggregation node, first at the amount of money that its display screen display transaction acceptance arrives, when user thinks that the amount of money is not pair, then presses cancel key, now aggregation node to Return the information Cancelled Transaction; After user thinks that dealing money is correct, then press acknowledgement key,Then aggregation node sends the sensing node required in body area network With Submit the instruction of verify data to; 3). measure physiological signal, sensing node With After receiving instruction, measure the same physiological signal of user respectively, if node With All gather Group physiological signal, it is respectively: , ..., With , ..., ; 4). according to physiological signal and multinomial productive set, sensing node According to multinomial Set of computations = , wherein , 1≤ ; Node Random generation simultaneously Individual point set = , wherein , , 1≤ , For coefficient; Then node Will With After random mixing, productive set = ; Sensing node Productive set after the same method ; 5). produce and send message, sensing node Produce message = , wherein Represent and use Right Carry out symmetric cryptography, Represent sensing node Fresh number; Equally, sensing node Produce message = , wherein Represent and use Right Carry out symmetric cryptography, Represent sensing node Fresh number; Sensing node With Respectively will by aggregation node , Send to intelligent terminal , Again will by intelligent terminal With Be sent to e-business certification center ; 6). subscriber authentication,E-business certification center Receive With After, first utilize Retrieve from information table, look into and see if there is Record, and whether have in this record With Two values, if do not had, then return mistake to intelligent terminal, if had, then perform step 7); 7). extract and gather and reconstruct multinomial, e-business certification center First utilize Corresponding key , from , In decrypt With , then from With Middle extraction set , work as set In the point set number that comprises reach Time, e-business certification center Set is utilized according to Lagrange's interpolation Reconstruct multinomial ; If = + + ... + , wherein Represent binary system Decimal form; 8). structure And judge, by multinomial Binary coefficient , ..., Be arranged in order rear composition Binary form, and then be translated into metric ; Judgement re-constructs With its storage Whether the same, if the same, then perform step 9); If different, then show the message received , Incorrect or do not come to registered users; 9). legitimacy verifies, e-business certification center Utilize Checking With In check code With Whether legal, if all legal, then authentication success, e-business certification center Can incite somebody to action from the account of user The amount of money of quantity is transferred accounts to businessman; If unsuccessful, then Fail Transaction.
The authentic authentication method of the online mobile-payment system based on body sense net of the present invention, steps d) in be divided into in the process of+1 section, if cannot decile, then exist binary-coded afterbody fills 1, until can be divided into + 1 section; Step 9) in the sensing node that gathers with physiological signal , figure place be 13 bits, 1≤ ; Step 7) in constructed set belongs to characteristics of human body's physiological signal, can be used as the evidence of transaction.
The authentic authentication method of the online mobile-payment system based on body sense net of the present invention, sensing node with the user's physiological signal gathered is body temperature, blood pressure, blood sugar, capacity of blood vessel variable signal PPG or ECG signal ECG.
The invention has the beneficial effects as follows: online mobile-payment system of the present invention and method, by arrange on human body with the aggregation node of intelligent terminal communication, arranges on human body for physiological signal collection wearing node and implant node, aggregation node with dress node and implant node and constitute body sense net, by dressing node and implanting node to the collection of the same physiological signal of human body, the key with uniqueness can be negotiated, have effectively achieved the certification of online mobile payment, ensure that the security of payment.
The advantage applies of online mobile-payment system of the present invention and method exists:
(1) user is without the need to remembering any password, eliminates the trouble that user safeguards password;
(2) without the need to any external password input apparatus, be user-friendly to;
(3) authentication information space is large, and opponent is difficult to carry out exhaustive guessing attack;
(4) authentication information randomness is good, and each authentication information is all different, even if intelligent mobile terminal equipment is provided with the malice APP of eavesdropping cellphone information, does not also affect the security of certification.
Accompanying drawing explanation
Fig. 1 is the schematic diagram of the online mobile-payment system based on body sense net of the present invention;
Fig. 2 is the display screen of aggregation node and the structural representation of button in the present invention;
Fig. 3 is the process flow diagram of registration phase in online mobile-payment system authentic authentication method of the present invention;
Fig. 4 is the process flow diagram of authentication phase in online mobile-payment system authentic authentication method of the present invention.
In figure: 1 intelligent terminal, 2 aggregation nodes, 3 dress node, and 4 implant node, 5 medical centres, 6 e-business certification centers.
Embodiment
Below in conjunction with accompanying drawing and embodiment, the invention will be further described.
As shown in Figure 1, give the schematic diagram of the online mobile-payment system based on body sense net of the present invention, it comprises medical centre 5, e-business certification center 6, intelligent terminal 1, aggregation node 2, dresses node 3 and implant node 4, shown aggregation node 2 has computing, storage and communication function, and it comprises IEEE802.15.6 module, SIM card communication module and bluetooth module.Shown wearing node and implantation node 4 are arranged in user's body surface and body respectively, realize the collection to user's physiological signal, and aggregation node 2, wearing node 3 and implantation node 4 form body area network by MANET.Aggregation node 2 is provided with display screen, acknowledgement key and cancel key, display screen is for showing dealing money, and acknowledgement key and cancel key are for the confirmation of concluding the business and cancellation.
Aggregation node 2 carries out communication by IEEE802.15.6 module with dressing node 3 and implant node 4, realizes the broadcast of physiological signal collection and order.Aggregation node 2 is communicated with medical centre 5 through 4G, 3G or GPRS wireless network by SIM card communication module, and medical centre 5 realizes registration.Aggregation node 2 carries out communication by bluetooth module and intelligent terminal 1, and the data realized on aggregation node 2 and intelligent terminal 1 between APP are transmitted.Intelligent terminal 1 is communicated with e-business certification center 6 by 4G, 3G or GPRS wireless network, realizes transmission of transaction data and certification.In the process of mobile payment certification, dress node 3 and implant node 4 and the same physiological signal of user is gathered simultaneously, the great similarity of the same physiological signal of user is utilized to negotiate trade confirmation key, not only ensure the confidentiality of transaction, opponent is difficult to implement to attack to transaction, also can preserve the physiological parameter of user as transaction voucher.
The authentic authentication method of the online mobile-payment system based on body sense net of the present invention, comprises registration phase and authentication phase;
Described registration phase is realized by following steps:
A). medical centre is registered, when user applies for body area network, medical centre first the built-in key of sensing node gathering identical signal in body area network for two of certification is given with the ID (identity number) card No. of user if two sensing nodes are respectively node , node , medical centre record comprises identification card number , user name , node mark , node mark and key in interior user profile;
Sensing node with the user's physiological signal gathered can be body temperature, blood pressure, blood sugar, PPG or ECG.
The user profile that medical centre records is:
B). e-business certification center is registered, and user is to e-business certification center during registration, complete registration by following steps:
B-1). send request, e-business certification center according to the identification card number that user provides , to medical centre send the request of extracting corresponding key information;
B-2). produce key and send, medical centre receive e-business certification center request after, first produce a random number , then calculated by Hash function: , wherein represent the link of message, produce key information and send it to e-business certification center ; E-business certification center acquisition comprises identification card number , user name , node mark , node mark and key in interior user profile;
The user profile that e-business certification center is recorded is:
C). verify and produce key information, medical centre will send to the aggregation node in body area network, aggregation node is broadcasted within the scope of body area network; Work as sensor node and sensor node receive after, utilize preset key checking legitimacy, if legal, produce ;
D). coding is decile also, sensor node with first self is calculated be encoded to binary mode, and will binary mode be divided into + 1 section, if binary-coded duan Wei , , binary mode be , then ;
In this step, be divided into in the process of+1 section, if cannot decile, then exist binary-coded afterbody fills 1, until can be divided into + 1 section;
E). build polynomial expression, sensor node with construct one respectively rank polynomial expression , = + + ... + , wherein represent decimal form; The registration phase of user completes;
Described authentication phase has been come by following steps:
1). connect and initiate transaction, user utilizes on intelligent terminal when buying commodity, selected commodity after clicking " payment " button, open the aggregation node that bluetooth module finds body area network, after both sides connect, by dealing money send to aggregation node;
2). trade confirmation, aggregation node, first at the amount of money that its display screen display transaction acceptance arrives, when user thinks that the amount of money is not pair, then presses cancel key, now aggregation node to return the information Cancelled Transaction; After user thinks that dealing money is correct, then press acknowledgement key, then aggregation node sends the sensing node required in body area network with submit the instruction of verify data to;
3). measure physiological signal, sensing node with after receiving instruction, measure the same physiological signal of user respectively, if node with all gather group physiological signal, it is respectively: , ..., with , ..., ;
In this step, the sensing node gathered with physiological signal , figure place be 13 bits, 1≤ ;
4). according to physiological signal and polynomial expression productive set, sensing node according to polynomial expression set of computations = , wherein , 1≤ ; Node random generation simultaneously individual point set = , wherein , , 1≤ , for coefficient; Then node will with after random mixing, productive set = ; Sensing node productive set after the same method ;
For set in element, it is rank polynomial expression upper a series of point, its horizontal seat is sensing node the physiological signal value gathered ; Point set in point all do not exist rank polynomial expression on, for neighbouring point, will , mixing productive set transmit as message, valid data are mixed with invalid data, expand the quantity of point set, can effectively prevent opponent from disturbing;
5). produce and send message, sensing node produce message = , wherein represent and use right carry out symmetric cryptography, represent sensing node fresh number; Equally, sensing node produce message = , wherein represent and use right carry out symmetric cryptography, represent sensing node fresh number; Sensing node with respectively will by aggregation node , send to intelligent terminal , again will by intelligent terminal with be sent to e-business certification center ;
6). subscriber authentication, e-business certification center receive with after, first utilize retrieve from information table, look into and see if there is record, and whether have in this record with two values, if do not had, then return mistake to intelligent terminal, if had, then perform step 7);
7). extract and gather and reconstruct polynomial expression, e-business certification center first utilize corresponding key , from , in decrypt with , then from with middle extraction set , work as set in the point set number that comprises reach time, e-business certification center set is utilized according to Lagrange's interpolation reconstruct polynomial expression ; If = + + ... + , wherein represent scale-of-two decimal form;
In set building process in, in point meet belong to point set requirement, and horizontal ordinate equals sensing node the physiological signal value gathered, due to with include sensing node respectively , gathered for same physiological signal, there is great similarity, be easy to obtain the set met the demands .
In this step, constructed set belongs to characteristics of human body's physiological signal, can be used as the evidence of transaction.
8). structure and judge, by polynomial expression binary coefficient , ..., be arranged in order rear composition binary mode, and then be translated into metric ; Judgement re-constructs with its storage whether the same, if the same, then perform step 9); If different, then show the message received , incorrect or do not come to registered users;
9). legitimacy verifies, e-business certification center utilize checking with in check code with whether legal, if all legal, then authentication success, e-business certification center can incite somebody to action from the account of user the amount of money of quantity is transferred accounts to businessman; If unsuccessful, then Fail Transaction.
Of the present invention based on the online mobile-payment system of body sense net and the safety analysis of authentic authentication method as follows:
1. due to be placed on the biosensor node (dress node and implant node) that implants, therefore opponent is difficult to obtain .In addition, due to = , therefore as the authentication center of an ecommerce, the master key of biosensor node also cannot be obtained , therefore the secure communication of body area network inside can also be used for by physiology sensing node.
2. with in with all quilts encryption, therefore opponent cannot construct set reconstruct polynomial expression .Meanwhile, due to with in information produced by the physiological signal of high randomness and stochastic set, when nwhen=10, with all reach 130 bits, make opponent be difficult to carry out exhaustive attack, cannot guess and correct PPG signal.In addition, in order to further reinforcement security, Ke Yirang with consult, to regularly replace .
3. because each authentication information transmitted by mobile phone A PP all comprises fresh number with , therefore, though opponent by wireless intercept or mobile phone malice APP obtain with , also cannot implement Replay Attack.
4. although communicating between mobile phone A PP with aggregation node cannot be protected; but present invention employs the mechanism that user confirms; only have when user confirms that the payment of display on mobile phone A PP is consistent with the payment that aggregation node shows, just press the button and carry out transaction authentication.

Claims (6)

1. the online mobile-payment system based on body sense net, comprise medical centre (5), e-business certification center (6), intelligent terminal (1) and be arranged at aggregation node (2) on user's body, dress node (3) and implantation node (4), dress node and implant in the node body surface that is arranged at user respectively and body, for gathering the physiological signal of user; Aggregation node, wearing node and implantation node form body area network; It is characterized in that: dress in node and implantation node and have at least two nodes to gather same physiological signal; Aggregation node is by wireless network and medical centre telecommunication and realize registering, and by dressing node and implanting the physiological signal that node gathers user, is communicated with intelligent terminal by bluetooth module; Intelligent terminal by wireless network and e-business certification center to center communications, to realize online mobile payment; E-business certification center carries out certification according to " two sensing nodes have great similarity to two groups of data that the same physiological signal collection of user obtains " simultaneously to the online mobile payment of user.
2. the online mobile-payment system based on body sense net according to claim 1, is characterized in that: be provided with in described aggregation node (2) and realize and wearing node (3) and IEEE802.15.6 module, the SIM card communication module communicated with medical centre (5) and the bluetooth module with intelligent terminal (1) communication implanting node (4) and communicate; The wireless network of the wireless network that described aggregation node communicates with medical centre and intelligent terminal and e-business certification center to center communications is 4G, 3G or GPRS cordless communication network.
3. the online mobile-payment system based on body sense net according to claim 1, is characterized in that: (2) are provided with display screen, acknowledgement key and cancel key to described aggregation node.
4., based on an authentic authentication method for the online mobile-payment system based on body sense net according to claim 1, it is characterized in that: comprise registration phase and authentication phase;
Described registration phase is realized by following steps:
A). medical centre is registered, when user applies for body area network, medical centre first the built-in key of sensing node gathering identical signal in body area network for two of certification is given with the ID (identity number) card No. of user if two sensing nodes are respectively node , node , medical centre record comprises identification card number , user name , node mark , node mark and key in interior user profile;
B). e-business certification center is registered, and user is to e-business certification center during registration, complete registration by following steps:
B-1). send request, e-business certification center according to the identification card number that user provides , to medical centre send the request of extracting corresponding key information;
B-2). produce key and send, medical centre receive e-business certification center request after, first produce a random number , then calculated by Hash function: , wherein represent the link of message, produce key information and send it to e-business certification center ; E-business certification center acquisition comprises identification card number , user name , node mark , node mark and key in interior user profile;
C). verify and produce key information, medical centre will send to the aggregation node in body area network, aggregation node is broadcasted within the scope of body area network; Work as sensor node and sensor node receive after, utilize preset key checking legitimacy, if legal, produce ;
D). coding is decile also, sensor node with first self is calculated be encoded to binary mode, and will binary mode be divided into + 1 section, if binary-coded duan Wei , , binary mode be , then ;
E). build polynomial expression, sensor node with construct one respectively rank polynomial expression , = + + ... + , wherein represent decimal form; The registration phase of user completes;
Described authentication phase has been come by following steps:
1). connect and initiate transaction, user utilizes on intelligent terminal when buying commodity, selected commodity after clicking " payment " button, open the aggregation node that bluetooth module finds body area network, after both sides connect, by dealing money send to aggregation node;
2). trade confirmation, aggregation node, first at the amount of money that its display screen display transaction acceptance arrives, when user thinks that the amount of money is not pair, then presses cancel key, now aggregation node to return the information Cancelled Transaction; After user thinks that dealing money is correct, then press acknowledgement key, then aggregation node sends the sensing node required in body area network with submit the instruction of verify data to;
3). measure physiological signal, sensing node with after receiving instruction, measure the same physiological signal of user respectively, if node with all gather group physiological signal, it is respectively: , ..., with , ..., ;
4). according to physiological signal and polynomial expression productive set, sensing node according to polynomial expression set of computations = , wherein , 1≤ ; Node random generation simultaneously individual point set = , wherein , , 1≤ , for coefficient; Then node will with after random mixing, productive set = ; Sensing node productive set after the same method ;
5). produce and send message, sensing node produce message = , wherein represent and use right carry out symmetric cryptography, represent sensing node fresh number; Equally, sensing node produce message = , wherein represent and use right carry out symmetric cryptography, represent sensing node fresh number; Sensing node with respectively will by aggregation node , send to intelligent terminal , again will by intelligent terminal with be sent to e-business certification center ;
6). subscriber authentication, e-business certification center receive with after, first utilize retrieve from information table, look into and see if there is record, and whether have in this record with two values, if do not had, then return mistake to intelligent terminal, if had, then perform step 7);
7). extract and gather and reconstruct polynomial expression, e-business certification center first utilize corresponding key, from , in decrypt with, then from with middle extraction set , work as set in the point set number that comprises reach time, e-business certification center set is utilized according to Lagrange's interpolation reconstruct polynomial expression ; If = + + ... + , wherein represent binary decimal form;
8). structure and judge, by polynomial expression binary coefficient , ..., be arranged in order rear composition binary mode, and then be translated into metric ; Judgement re-constructs with its storage whether the same, if the same, then perform step 9); If different, then show the message received , incorrect or do not come to registered users;
9). legitimacy verifies, e-business certification center utilize checking with in check code with whether legal, if all legal, then authentication success, e-business certification center can incite somebody to action from the account of user the amount of money of quantity is transferred accounts to businessman; If unsuccessful, then Fail Transaction.
5. the authentic authentication method of the online mobile-payment system based on body sense net according to claim 4, is characterized in that: steps d) in be divided into in the process of+1 section, if cannot decile, then exist binary-coded afterbody fills 1, until can be divided into + 1 section; Step 9) in the sensing node that gathers with physiological signal , figure place be 13 bits, 1≤ ; Step 7) in constructed set belongs to characteristics of human body's physiological signal, can be used as the evidence of transaction.
6. the authentic authentication method of the online mobile-payment system based on body sense net according to claim 4 or 5, is characterized in that: sensing node be body temperature, blood pressure, blood sugar, capacity of blood vessel variable signal PPG or ECG signal ECG with gathered user's physiological signal.
CN201410565015.2A 2014-10-22 2014-10-22 Online mobile-payment system and authentic authentication method based on body-sensing net Expired - Fee Related CN104299133B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410565015.2A CN104299133B (en) 2014-10-22 2014-10-22 Online mobile-payment system and authentic authentication method based on body-sensing net

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410565015.2A CN104299133B (en) 2014-10-22 2014-10-22 Online mobile-payment system and authentic authentication method based on body-sensing net

Publications (2)

Publication Number Publication Date
CN104299133A true CN104299133A (en) 2015-01-21
CN104299133B CN104299133B (en) 2017-10-24

Family

ID=52318854

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410565015.2A Expired - Fee Related CN104299133B (en) 2014-10-22 2014-10-22 Online mobile-payment system and authentic authentication method based on body-sensing net

Country Status (1)

Country Link
CN (1) CN104299133B (en)

Cited By (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN105653839A (en) * 2015-12-18 2016-06-08 宁波大学 Near field communication mobile medical service system
CN106156558A (en) * 2015-04-14 2016-11-23 广州杰赛科技股份有限公司 A kind of automated periodic authentication method
WO2017096550A1 (en) * 2015-12-09 2017-06-15 Intel Corporation Methods and apparatus using human electrocardiogram to protect electronic data
WO2017219517A1 (en) * 2016-06-21 2017-12-28 中兴通讯股份有限公司 Communication security control method and wearable device
CN109069038A (en) * 2016-04-02 2018-12-21 英特尔公司 Compression sensing sparse sampling photoplethaysmography figure (PPG) measurement

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102057386A (en) * 2008-06-06 2011-05-11 电子湾有限公司 Trusted service manager (TSM) architectures and methods
CN202694458U (en) * 2012-08-14 2013-01-23 山东财经大学 Online payment system based on mobile intelligent communication equipment
WO2013134832A1 (en) * 2012-03-15 2013-09-19 Mikoh Corporation A biometric authentication system
CN103761647A (en) * 2014-01-24 2014-04-30 金硕澳门离岸商业服务有限公司 Electronic payment system and electronic payment method
US20140279528A1 (en) * 2013-03-15 2014-09-18 Motorola Mobility Llc Wearable Authentication Device

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN102057386A (en) * 2008-06-06 2011-05-11 电子湾有限公司 Trusted service manager (TSM) architectures and methods
WO2013134832A1 (en) * 2012-03-15 2013-09-19 Mikoh Corporation A biometric authentication system
CN202694458U (en) * 2012-08-14 2013-01-23 山东财经大学 Online payment system based on mobile intelligent communication equipment
US20140279528A1 (en) * 2013-03-15 2014-09-18 Motorola Mobility Llc Wearable Authentication Device
CN103761647A (en) * 2014-01-24 2014-04-30 金硕澳门离岸商业服务有限公司 Electronic payment system and electronic payment method

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
刘炳: "面向体域网的轻量型组密钥管理协议", 《中国优秀硕士学位论文全文数据库 信息科技辑(月刊)》 *
王银: "基于指纹认证的移动支付系统设计与实现", 《中国优秀硕士学位论文全文数据库 信息科技辑(月刊)》 *
黄太波: "躯感网信息安全传输机制的研究与实现", 《中国优秀硕士学位论文数据库 信息科技辑(月刊)》 *

Cited By (7)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN106156558A (en) * 2015-04-14 2016-11-23 广州杰赛科技股份有限公司 A kind of automated periodic authentication method
WO2017096550A1 (en) * 2015-12-09 2017-06-15 Intel Corporation Methods and apparatus using human electrocardiogram to protect electronic data
US10853516B2 (en) 2015-12-09 2020-12-01 Intel Corporation Methods and apparatus using human electrocardiogram to protect electronic data
CN105653839A (en) * 2015-12-18 2016-06-08 宁波大学 Near field communication mobile medical service system
CN105653839B (en) * 2015-12-18 2018-08-31 宁波大学 Near-field communication portable medical service system
CN109069038A (en) * 2016-04-02 2018-12-21 英特尔公司 Compression sensing sparse sampling photoplethaysmography figure (PPG) measurement
WO2017219517A1 (en) * 2016-06-21 2017-12-28 中兴通讯股份有限公司 Communication security control method and wearable device

Also Published As

Publication number Publication date
CN104299133B (en) 2017-10-24

Similar Documents

Publication Publication Date Title
Aghili et al. LACO: Lightweight three-factor authentication, access control and ownership transfer scheme for e-health systems in IoT
CN102165458B (en) Authenticating a device and a user
EP1734717B1 (en) Authentication systems, wireless communication terminals and wireless base stations
CN104299133A (en) On-line mobile payment system based on somatosensory network and credibility authentication method
CN106027250B (en) A kind of ID card information safe transmission method and system
CN103532719B (en) Dynamic password generation method, dynamic password generation system, as well as processing method and processing system of transaction request
CN109412790A (en) A kind of user authentication of internet of things oriented and key agreement system and method
CN103400269A (en) Smart community home gateway-based safety payment method
US20160381011A1 (en) Network security method and network security system
CN106295290B (en) Method, device and system for generating authentication information based on fingerprint information
CN104202299A (en) System and method of identity authentication based on Bluetooth
CN106027457B (en) A kind of ID card information transmission method and system
CN106156677B (en) Identity card card reading method and system
CN206601734U (en) Transaction data processing terminal and system based on coded image
CN111083150A (en) Identity authentication and data security transmission method under medical sensor network environment
CN101944216A (en) Two-factor online transaction safety authentication method and system
CN110599342A (en) Block chain-based identity information authorization method and device
KR101856682B1 (en) Entity authentication method and device
CN108200037A (en) A kind of method and system that safety operation is performed using safety equipment
CN109450648A (en) Key generating device, data processing equipment and stream compression system
US10958646B2 (en) Biometric authentication with body communication network
CN106027249B (en) Identity card card reading method and system
CN104899533B (en) ID card information acquisition methods, apparatus and system
CN106656993A (en) Dynamic verification code verifying method and apparatus
CN108566385A (en) The mutual authentication method of efficient secret protection based on cloud

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
CF01 Termination of patent right due to non-payment of annual fee

Granted publication date: 20171024

Termination date: 20181022

CF01 Termination of patent right due to non-payment of annual fee